$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/56d828bf-81fa-4253-8691-f9c277ca84ba.roa File: 56d828bf-81fa-4253-8691-f9c277ca84ba.roa (raw, json) Hash identifier: YGxWPGMF4ez0T1J+FXW92iEjZV6q4Xjo6DQoHfV5e0c= Subject key identifier: 60:30:56:A2:BD:22:5A:C2:C6:22:48:2A:47:3A:D7:98:93:86:1B:D4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 722B03F1DB780C7D2E7560CC70F77B3BF8E55E6A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/56d828bf-81fa-4253-8691-f9c277ca84ba.roa Signing time: Wed 21 May 2025 00:20:44 +0000 ROA not before: Wed 21 May 2025 00:20:44 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 6167 IP address blocks: 155.146.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:2b:03:f1:db:78:0c:7d:2e:75:60:cc:70:f7:7b:3b:f8:e5:5e:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 21 00:20:44 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=a317ca3abeb538ce9a16eb1a6a97498fe9ba0a37e583186c7f2e44ee16a61eb8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ab:e3:06:c2:ea:96:0d:2d:d8:ac:f5:19:33: a9:57:4f:e7:e8:66:95:df:fc:e6:08:2b:e3:09:a0: 16:2c:e6:29:0e:1f:5e:ec:50:15:af:4f:56:e0:25: ad:c9:70:e8:27:95:8e:78:7e:38:18:d8:9b:b0:13: 35:8d:f4:d5:da:22:60:6e:a7:90:ec:d3:86:32:85: f6:bf:c3:db:b4:25:df:9f:87:1a:f2:bc:11:24:89: 9a:e6:f3:e6:00:b7:e0:a7:90:02:95:cd:64:72:cd: 91:c8:cd:d0:d0:3e:73:91:df:61:de:49:fe:0e:b0: 36:ac:fa:42:72:b7:cf:59:1a:a6:48:c3:d7:c9:51: 6b:74:df:1c:94:24:5a:c1:c4:9b:f1:86:5e:36:b6: 9e:c7:77:e9:95:76:fd:39:f8:3f:76:10:01:ad:7d: 05:86:01:c8:83:9c:20:e2:cd:a2:93:b8:4f:bb:d8: 75:20:6d:21:13:e6:c4:de:32:9a:3b:20:bd:fc:36: 11:98:dd:c3:7e:35:d8:3f:07:82:a2:ae:f0:39:ba: 71:d4:b4:49:92:4e:1e:79:0c:dc:3f:59:b5:1c:a9: da:c7:ee:f8:65:c3:4a:42:e3:c1:31:d5:d6:ae:53: fa:fb:c3:92:f2:d6:2d:87:30:14:47:1c:20:a9:98: 4e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:30:56:A2:BD:22:5A:C2:C6:22:48:2A:47:3A:D7:98:93:86:1B:D4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/56d828bf-81fa-4253-8691-f9c277ca84ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.146.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:22:d2:27:33:40:b9:71:24:da:0f:c0:ac:55:bf:82:44:4c: 48:88:83:8a:58:bd:0e:b3:c6:f3:ea:f0:08:a2:2c:3d:72:0d: d4:e7:95:43:4c:eb:7d:45:cf:d3:0a:f3:09:9d:0d:64:12:b8: 38:f9:28:d0:9c:ac:68:05:71:ec:56:a6:32:c4:54:44:bc:83: 32:b2:b2:f5:da:a1:7d:ff:2d:ea:be:98:00:0e:7e:fa:36:c1: 7e:db:18:27:d6:88:8c:7c:65:0f:b1:51:15:56:1b:6d:f8:96: bf:1c:e7:dc:e6:19:d9:10:17:b7:d1:1a:13:ac:b6:ce:51:f3: a3:e8:b8:75:a7:1b:b4:9a:ee:f9:f6:e6:fa:c5:9c:f4:a8:9b: f3:48:0e:5c:8d:87:fe:9f:8a:e2:69:c5:8e:c3:62:48:6d:51: 98:2c:ae:90:16:50:65:03:ac:0a:c3:af:ad:b2:08:8d:c3:c6: c7:b7:19:10:11:5c:6d:0a:f2:4f:31:1c:71:04:90:6b:60:a6: 3d:54:e8:18:ac:50:40:ca:c7:e7:79:8c:9f:6c:cb:a6:0b:58: 81:85:18:39:eb:33:22:0a:6f:1e:9b:19:f4:50:d1:49:53:b0: 6f:52:f1:5b:ae:ce:d0:63:9d:ba:1f:0e:6d:38:d7:a1:cc:82: e8:03:91:20 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcisD8dt4DH0udWDMcPd7O/jlXmowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIxMDAyMDQ0WhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzE3Y2EzYWJlYjUzOGNlOWExNmViMWE2YTk3NDk4ZmU5 YmEwYTM3ZTU4MzE4NmM3ZjJlNDRlZTE2YTYxZWI4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuq+MGwuqWDS3YrPUZM6lXT+foZpXf/OYIK+MJoBYs5ikO H17sUBWvT1bgJa3JcOgnlY54fjgY2JuwEzWN9NXaImBup5Ds04Yyhfa/w9u0Jd+f hxryvBEkiZrm8+YAt+CnkAKVzWRyzZHIzdDQPnOR32HeSf4OsDas+kJyt89ZGqZI w9fJUWt03xyUJFrBxJvxhl42tp7Hd+mVdv05+D92EAGtfQWGAciDnCDizaKTuE+7 2HUgbSET5sTeMpo7IL38NhGY3cN+Ndg/B4KirvA5unHUtEmSTh55DNw/WbUcqdrH 7vhlw0pC48Ex1dauU/r7w5Ly1i2HMBRHHCCpmE5xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYDBWor0iWsLGIkgqRzrXmJOGG9QwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU2ZDgyOGJmLTgxZmEtNDI1My04NjkxLWY5YzI3N2NhODRiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCbkjANBgkqhkiG9w0BAQsFAAOCAQEAWiLSJzNAuXEk2g/ArFW/gkRMSIiD ili9DrPG8+rwCKIsPXIN1OeVQ0zrfUXP0wrzCZ0NZBK4OPko0JysaAVx7FamMsRU RLyDMrKy9dqhff8t6r6YAA5++jbBftsYJ9aIjHxlD7FRFVYbbfiWvxzn3OYZ2RAX t9EaE6y2zlHzo+i4dacbtJru+fbm+sWc9Kib80gOXI2H/p+K4mnFjsNiSG1RmCyu kBZQZQOsCsOvrbIIjcPGx7cZEBFcbQryTzEccQSQa2CmPVToGKxQQMrH53mMn2zL pgtYgYUYOeszIgpvHpsZ9FDRSVOwb1LxW67O0GOduh8ObTjXocyC6AORIA== -----END CERTIFICATE-----Generated at Sun Jun 1 03:09:40 2025 by rpki-client